On Feb 13, 2014 7:03 AM, "Richard Barnes" <rbarnes@mozilla.com> wrote:
>
> On 2/13/14, 12:28 AM, Ryan Sleevi wrote:
>>
>> Are there any objections for removing SHA-224?
>
>
> Not from me.
>
>
>
>> I note, for example, that Microsoft has chosen not to implement SHA-224.
>> It provides less security as SHA-256, but at the same performance cost.
>>
>> I'm trying to think of a compelling reason for implementors to implement
>> SHA-224, and I can't find one, other than for completion sake. Do we
>> have any use cases for it?
>
>
> Just to be clear, leaving it in wouldn't compel implementors to implement
it, right?
>
> "[This] specification does not dictate a mandatory set of algorithms that
MUST be implemented."
No. But it would bloat the spec needlessly and give people a false
impression regarding how likely their chosen algorithm is or is not to be
implemented.
This is the same argument for not including SEED or GOST. Yes, we can
enumerate every possible algorithm, but before hitting PR we'd be removing
them. I can see no benefit to leaving it in - only harm - if no one plans
to implement.